The intent of this BPI+ specification is to describe MAC layer security services for DOCSIS® CMTS - CM communications. BPI+ security goals are twofold:
•provide cable modem users with data privacy across the cablenetwork
•provide MSOs with service protection; i.e., prevent unauthorized users from gaining access to the network's RF MACservices
BPI+ provides a level of data privacy across the shared medium cable network equal to or better than that provided by dedicated line network access services (analog modems or digital subscriber lines).
The protected RF MAC data communications services fall into three categories:
•best-effort, high-speed, IP data services
•QoS (e.g., constant bit rate) data services
•IP multicast group services
The earlier BPI specification [SCTE 22-2] had "weak" service protection because the underlying key management protocol did not authenticate CMs. BPI+ strengthens this service protection by adding digital-certificate based CM authentication to its key exchange protocol.
| File Size : | 1
file
, 2.1 MB |
| Number of Pages : | 180 |
| Published : | 2022 |
